Overview
This one-day course teaches you how to use the VMware Carbon Black® Cloud Enterprise EDR™ product and leverage its capabilities to configure and maintain the system according to your organization’s security posture and policies. This course provides an in-depth, technical understanding of the product through comprehensive coursework and hands-on scenario-based labs.

Objective
By the end of the course, you should be able to meet the following objectives:
• Describe the components and capabilities of VMware Carbon Black Cloud Enterprise EDR
• Identify the architecture and data flows for VMware Carbon Black Cloud Enterprise EDR communication
• Perform searches across endpoint data to discover suspicious behavior
• Manage watchlists to augment the functionality of VMware Carbon Black Cloud Enterprise EDR
• Create custom watchlists to detect suspicious activity in your environment
• Describe the process for responding to alerts in VMware Carbon Black Cloud Enterprise EDR
• Discover malicious activity within VMware Carbon Black Cloud Enterprise EDR
• Describe the different response capabilities available from VMware Carbon Black Cloud

Outline
1 Course Introduction
• Introductions and course logistics
• Course objectives